Flight plan: Difference between revisions
From Pessin randon wiki
No edit summary |
|||
| Line 12: | Line 12: | ||
===Tools=== | ===Tools=== | ||
binwalk | binwalk -e file.pdf | |||
wine | |||
===Flag=== | ===Flag=== | ||
Revision as of 18:59, 14 September 2022
Description
After everything is cleared you start to wonder about the origin of this attack.
When inspecting the logs, a correlation between the start of the compromise and a pdf file arriving to the ATC can be made.
200pts
Question
Inspect the flight plan, find out if there is anything malicious hidden in it.
Solution
Tools
binwalk | binwalk -e file.pdf
wine
